Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2022-02-22 CVE-2022-0714 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4436.
local
low complexity
vim fedoraproject debian apple
5.5
5.5
2022-02-22 CVE-2022-0713 Out-of-bounds Write vulnerability in multiple products
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.
local
low complexity
radare fedoraproject CWE-787
7.1
7.1
2022-02-22 CVE-2022-0712 NULL Pointer Dereference vulnerability in multiple products
NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.4.
local
low complexity
radare fedoraproject CWE-476
5.5
5.5
2022-02-22 CVE-2022-0676 Out-of-bounds Write vulnerability in multiple products
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.
local
low complexity
radare fedoraproject CWE-787
7.8
7.8
2022-02-21 CVE-2021-4115 There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. 5.5
5.5
2022-02-21 CVE-2022-0696 NULL Pointer Dereference vulnerability in multiple products
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428.
local
low complexity
vim fedoraproject apple debian CWE-476
5.5
5.5
2022-02-21 CVE-2021-44141 Link Following vulnerability in multiple products
All versions of Samba prior to 4.15.5 are vulnerable to a malicious client using a server symlink to determine if a file or directory exists in an area of the server file system not exported under the share definition.
network
low complexity
samba redhat fedoraproject CWE-59
4.3
4.3
2022-02-21 CVE-2021-44142 Out-of-bounds Write vulnerability in multiple products
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions prior to 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow out-of-bounds heap read and write via specially crafted extended file attributes. 		8.8
8.8
2022-02-20 CVE-2021-45083 Incorrect Default Permissions vulnerability in multiple products
An issue was discovered in Cobbler before 3.3.1.
local
low complexity
cobbler-project fedoraproject CWE-276
7.1
7.1
2022-02-20 CVE-2022-0685 Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4418.
local
low complexity
vim fedoraproject debian apple
7.8
7.8